Cybozu CVEs and Security Vulnerabilities

Filtered by vendor Cybozu Subscriptions

Search

Switch to Advanced Search (Beta)

Total 330 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2016-4873	1 Cybozu	1 Office	2025-04-20	N/A
Cybozu Office 9.0.0 to 10.4.0 allows remote authenticated attackers to execute unintended operations via the Project function.
CVE-2016-4869	1 Cybozu	1 Office	2025-04-20	N/A
Cybozu Office 9.0.0 to 10.4.0 allow remote attackers to obtain session information via a page where CGI environment variables are displayed.
CVE-2016-4844	1 Cybozu	1 Mailwise	2025-04-20	N/A
Cybozu Mailwise before 5.4.0 allows remote attackers to conduct clickjacking attacks.
CVE-2016-1220	1 Cybozu	1 Garoon	2025-04-20	N/A
Cybozu Garoon before 4.2.2 does not properly restrict access.
CVE-2016-4867	1 Cybozu	1 Office	2025-04-20	N/A
Cybozu Office 9.0.0 to 10.4.0 allows remote authenticated attackers to bypass access restriction to view unauthorized project information via the Project function.
CVE-2016-4868	1 Cybozu	1 Office	2025-04-20	N/A
Email header injection vulnerability in Cybozu Office 9.0.0 to 10.4.0 allows remote attackers to inject arbitrary email headers to send unintended emails via specially crafted requests.
CVE-2016-1218	1 Cybozu	1 Garoon	2025-04-20	N/A
SQL injection vulnerability in Cybozu Garoon before 4.2.2.
CVE-2016-4871	1 Cybozu	1 Office	2025-04-20	N/A
Cybozu Office 9.0.0 through 10.4.0 allows remote attackers to cause a denial of service.
CVE-2017-2257	1 Cybozu	1 Garoon	2025-04-20	N/A
Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.2.5 allows an attacker to inject arbitrary web script or HTML via mail function.
CVE-2016-1219	1 Cybozu	1 Garoon	2025-04-20	N/A
Cybozu Garoon before 4.2.2 allows remote attackers to bypass login authentication via vectors related to API use.
CVE-2016-4866	1 Cybozu	1 Office	2025-04-20	N/A
Cross-site scripting vulnerability in Cybozu Office 9.0.0 to 10.4.0 allows attackers with administrator rights to inject arbitrary web script or HTML via the Project function.
CVE-2016-4870	1 Cybozu	1 Office	2025-04-20	N/A
Cross-site scripting vulnerability in Cybozu Office 9.0.0 to 10.4.0 allows remote authenticated attackers to inject arbitrary web script or HTML via the Schedule function.
CVE-2016-4907	1 Cybozu	1 Garoon	2025-04-20	N/A
Cybozu Garoon 3.0.0 to 4.2.2 allow remote attackers to obtain CSRF tokens via unspecified vectors.
CVE-2016-1187	1 Cybozu	1 Kunai	2025-04-20	N/A
Cybozu KUNAI for iPhone 2.0.3 through 3.1.5 and for Android 2.1.2 through 3.0.4 does not verify SSL certificates.
CVE-2016-1194	1 Cybozu	1 Garoon	2025-04-20	N/A
Cybozu Garoon before 4.2.1 allows remote attackers to cause a denial of service.
CVE-2017-2114	1 Cybozu	1 Office	2025-04-20	N/A
Cross-site scripting vulnerability in Cybozu Office 10.0.0 to 10.5.0 allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2016-1214	1 Cybozu	1 Garoon	2025-04-20	N/A
Cross-site scripting (XSS) vulnerability in the "Response request" function in Cybozu Garoon before 4.2.2.
CVE-2016-4906	1 Cybozu	1 Garoon	2025-04-20	N/A
Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.2.2 allows remote attackers to inject arbitrary web script or HTML via "Messages" function of Cybozu Garoon Keitai.
CVE-2017-2172	1 Cybozu	1 Kunai	2025-04-20	N/A
Cross-site scripting vulnerability in Cybozu KUNAI for Android 3.0.0 to 3.0.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2017-2092	1 Cybozu	1 Garoon	2025-04-20	N/A
Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.2.3 allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.

« first previous Page 2 of 17. next last »